This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Using 35.01 Updated flash to 16.0.0.296 and still says vulnerable

  • 4 replies
  • 10 have this problem
  • 8 views
  • Last reply by James

more options

Have updated Firefox to 35.01, Checked add-ons, Firefox plugin check & updates said its vulnerable. Went through normal flash update procedure directly from Firefox link on the plugin check & updates. Installed update. Rebooted Plugin check & updates still says vulnerable. Checked Adobe website page, "You have version 16,0,0,296 installed" and it works fine. This is the latest version (as of 11.38 GMT 03-02-2015).

This issue has been previously raised, but people have been fobbed off with issues surrounding latest FF update and previous Flash updates which happened close to each other.

Any ideas ?

Adobe thinks its ok, so this must be a 35.01 issue or other FF compatibility issue.

Have updated Firefox to 35.01, Checked add-ons, Firefox plugin check & updates said its vulnerable. Went through normal flash update procedure directly from Firefox link on the plugin check & updates. Installed update. Rebooted Plugin check & updates still says vulnerable. Checked Adobe website page, "You have version 16,0,0,296 installed" and it works fine. This is the latest version (as of 11.38 GMT 03-02-2015). This issue has been previously raised, but people have been fobbed off with issues surrounding latest FF update and previous Flash updates which happened close to each other. Any ideas ? Adobe thinks its ok, so this must be a 35.01 issue or other FF compatibility issue.

All Replies (4)

more options

hello UKTricky, unforunatley the result of the plugin-check page is correct, there has been yet another vulnerability found in adobe flash player 16.0.0.296 which is already exploited in the wild. see the security advisory: https://helpx.adobe.com/security/products/flash-player/apsa15-02.html

there is no fix for it released by adobe yet and the update button on the plugin check site will lead nowhere at the moment - so it's best to set the shockwave flash plugin to ask-to-activate in the firefox addons > plugins panel!

more options

philipp is right. What I did was set to "never activate." Then I don't get as many nag screens. Why I post this is that I found that almost all embedded content, and YouTube, all played just fine without Flash.

That was a huge discovery for me! Hopefully Adobe Flash will get it's act together soon. What they're losing is a lot of advertising revenue and that is probably making many commercial websites that rely on advertising revenue to support themselves really upset...then again, I don't really mind temporarily not getting the advertisements.

Regards, Axis

more options

This is not a Firefox 35.0.1 or any other Firefox version issue in other words.

more options

https://www.adobe.com/products/flashplayer/distribution3.html

Flash player 16.0.0.305, 13.0.0.269 esr and the 11.2.202.442 for Linux is now available for download.

https://helpx.adobe.com/security/products/flash-player/apsb15-04.html